| 2105 | A Technical Analysis of CVE-2021-30864: Bypassing App Sandbox Restrictions |
Local Privilege Escalation
MacOS |
Apple |
Perception Point (@PerceptionPo1nt) |
Bug Bounty | 2021-11-03 | 2023-06-13 |
| 2099 | 4 Crits in 48 hours: Unicorn Programs |
Privilege escalation
Information disclosure
IDOR |
NA |
Monke (@pmofcats) |
Bug Bounty | 2021-11-06 | 2023-06-13 |
| 2091 | ChaosDB Explained: Azure%27s Cosmos DB Vulnerability Walkthrough |
Cross-tenant vulnerability
Account takeover
Privilege escalation |
Microsoft |
Nir Ohfeld (@nirohfeld) |
Bug Bounty | 2021-11-10 | 2023-06-13 |
| 2083 | Privilege Escalation, worth of €300 |
Broken Access Control
IDOR
Privilege escalation |
NA |
Hemant Kumar |
Bug Bounty | 2021-11-12 | 2023-06-13 |
| 2067 | URL whitelist bypass in https://cxl-services.appspot.com |
Privilege escalation
URL validation bypass
SSRF |
Google |
David Schütz (@xdavidhu) |
Bug Bounty | 2021-11-17 | 2023-06-13 |
| 2058 | GoSecure Investigates Abusing Windows Server Update Services (WSUS) to Enable NTLM Relaying Attacks |
Local Privilege Escalation |
Microsoft |
Romain Carnus |
Bug Bounty | 2021-11-22 | 2023-06-13 |
| 2052 | Multiple Vulnerabilities In Concrete CMS – Part2 (PrivEsc/SSRF/etc) |
Privilege escalation
SSRF |
Concrete CMS |
FORTBRIDGE (@FORTBRIDGE1) |
Bug Bounty | 2021-11-25 | 2023-06-13 |
| 2019 | Hacking into Admin Panel of U.S Federal government system C.A.R.S — without credentials. |
Client-side enforcement of server-side security
Privilege escalation |
U.S. General Services Administration |
Hazem Brini (@ImJungsuu) |
Bug Bounty | 2021-12-07 | 2023-06-13 |
| 2016 | Privilege Escalation in Microsoft Teams |
Privilege escalation
Broken Access Control |
Microsoft |
Vikas Anil Sharma (@vikzsharma) |
Bug Bounty | 2021-12-07 | 2023-06-13 |
| 1997 | Bypassing the macOS Gatekeeper |
Local Privilege Escalation
Gatekeeper bypass
MacOS |
Apple |
Ron Masas (@RonMasas) |
Bug Bounty | 2021-12-15 | 2023-06-13 |
| 1979 | Sandbox escape + privilege escalation in StorePrivilegedTaskService |
Local Privilege Escalation
MacOS |
Apple |
Sector 7 (@sector7_nl) |
Bug Bounty | 2021-12-21 | 2023-06-13 |
| 1939 | Accessing GoDaddy internal instance through an email logic bug. |
Logic flaw
Privilege escalation
Account takeover |
GoDaddy |
Mostafa Mamdoh |
Bug Bounty | 2022-01-05 | 2023-06-13 |
| 1936 | Exploiting Redash instances with CVE-2021-41192 |
Privilege escalation
Session management issue
SSRF |
NA |
Ian Carroll (@iangcarroll) |
Bug Bounty | 2022-01-06 | 2023-06-13 |
| 1870 | Microsoft OneDrive For Macos Local Privilege Escalation |
Local Privilege Escalation
MacOS |
Microsoft |
Offensive Security (@offsectraining) |
Bug Bounty | 2022-01-31 | 2023-06-13 |
| 1861 | A misconfigured Apache Airflow to AWS Account Compromise |
Outdated component with a known vulnerability
Privilege escalation
Information disclosure |
NA |
Avinash Jain (@logicbomb_1) |
Bug Bounty | 2022-02-02 | 2023-06-13 |
| 1838 | How Docker Made Me More Capable and the Host Less Secure |
Local Privilege Escalation |
Microsoft |
Alon Zahavi (@Alon_Z4) |
Bug Bounty | 2022-02-08 | 2023-06-13 |
| 1837 | SpoolFool: Windows Print Spooler Privilege Escalation (CVE-2022-21999) |
Local Privilege Escalation |
Microsoft |
Olivier Lyak (@ly4k_) |
Bug Bounty | 2022-02-08 | 2023-06-13 |
| 1811 | How I earned $9000 with Privilege escalations |
Privilege escalation |
NA |
Junaid Khan (@JunoonBro) |
Bug Bounty | 2022-02-16 | 2023-06-13 |
| 1771 | webOS Revisited - Even More Mistaken Identities |
Local Privilege Escalation
Browser hacking |
LG |
Andreas Lindh (@addelindh) |
Bug Bounty | 2022-03-02 | 2023-06-13 |
| 1756 | Container Escape to Shadow Admin: GKE Autopilot Vulnerabilities |
Privilege escalation
Container escape
Kubernetes |
Google |
Unit 42 (@Unit42_Intel) |
Bug Bounty | 2022-03-08 | 2023-06-13 |
| 1751 | Escalating from Logic App Contributor to Root Owner in Azure |
Privilege escalation |
Microsoft |
Josh Magri (@passthehashbrwn) |
Bug Bounty | 2022-03-09 | 2023-06-13 |
| 1747 | CVE-2022-24696 – Glance By Mirametrix Privilege Escalation |
Local Privilege Escalation |
Lenovo |
Oddvar Moe (@Oddvarmoe) |
Bug Bounty | 2022-03-11 | 2023-06-13 |
| 1730 | CVE-2022-22616: Simple way to bypass GateKeeper, hidden for years |
Local Privilege Escalation
GateKeeper bypass
MacOS |
Apple |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-03-15 | 2023-06-13 |
| 1727 | Securing Developer Tools: Git Integrations |
Local Privilege Escalation |
Microsoft
JetBrains
GitHub |
Sonar (@SonarSource) |
Bug Bounty | 2022-03-15 | 2023-06-13 |
| 1720 | Abusing Azure Hybrid Workers for Privilege Escalation – Part 1 |
Privilege escalation |
Microsoft (Azure) |
Josh Magri (@passthehashbrwn) |
Bug Bounty | 2022-03-17 | 2023-06-13 |
